Try our new research platform with insights from 80,000+ expert users

Rapid7 AppSpider pros and cons

Vendor: Rapid7

3.9 out of 5

14 reviews
100% willing to recommend

Pros & Cons summary

Rapid7 AppSpider quickly detects and displays vulnerabilities upon release and supports compliance reporting for PCA and GDPR. The detailed and flexible vulnerability reporting is highly valuable. While stable and feature-rich, AppSpider is challenged by scalability for large enterprises and is slower and more costly than competitors. Issues include false positives and high RAM requirements during scans. Authentication identification is robust, but the tool could improve efficiency and affordability for better market competitiveness.

Buyer's Guide

Get pricing advice, tips, use cases and valuable features from real users of this product.

Prominent pros & cons

PROS

Rapid7 AppSpider detects vulnerabilities quickly and displays them efficiently.

It manages different applications effectively and generates compliance reports for PCA/GDPR.

Reporting is highly valuable, meeting international standards and being flexible in report generation.

The automated scanning feature delivers detailed information about vulnerabilities and their solutions.

Broad authentication capabilities and high stability make Rapid7 AppSpider highly reliable.

CONS

Rapid7 AppSpider needs to improve scalability for large networks with millions of IP addresses.

The price is considered expensive compared to competitors.

Scanning speed is too slow and can take an entire day.

RAM usage during scanning can be problematic.

Provides numerous false positives compared to other solutions.

Rapid7 AppSpider Pros review quotes

Head Information Security at Akhtar Fuiou Technologies

Nov 17, 2022

What I like most about AppSpider is that it's easy to use and its automated scan gives me all the details I need to know when it comes to vulnerabilities and their solutions.

Read full review

Agustinus DWIJOKO

Network & Security Engineer at PT. Centrin Online Prima

Sep 27, 2020

When it is set up properly, it can do scanning on web apps with multiple engines automatically.

Read full review

Agustinus DWIJOKO

Network & Security Engineer at PT. Centrin Online Prima

Apr 11, 2023

It scans all the components developed within a web application.

Read full review

Rapid7 AppSpider

Free Report: Rapid7 AppSpider Reviews and More

Learn what your peers think about Rapid7 AppSpider. Get advice and tips from experienced pros sharing their opinions. Updated: February 2025.

839,422 professionals have used our research since 2012.

Executive Manager at B2B-Solutions LLC

Nov 10, 2019

The entire solution is interactive and has a point-and-click user experience, which makes it easy to find items or drill down on information. You don't need specialized skills to use the product.

Read full review

Information Security Senior Expert (Founding member, African Cybersecurity Center) at a financial services firm with 10,001+ employees

Oct 22, 2019

The most valuable feature is the reporting, which is compliant with international standards.

Read full review

reviewer1327302

Security Consultant at a tech vendor with 11-50 employees

Apr 16, 2020

It is really accurate and the rate of false positives is very low.

Read full review

Executive Manager at B2B-Solutions LLC

May 4, 2023

The most valuable feature of Rapid7 AppSpider is the vulnerability reporting data. Additionally, the data is reported in a convenient way rather than seeing them as a PDF. We are able to generate all the reports exactly what we want in a flexible way.

Read full review

HW

Hiroshi Watanabe

Marketing Expert at J's communication

Feb 19, 2025

One of the most valuable features of AppSpider is its broad range of authentication identification, which is a key reason for its utilization.

Read full review

GK

Cyber Security Consultant at Relevance Lab

Jun 5, 2019

Rapid7 AppSpider is good at managing different applications. It uses applets and generates reports to cover the PCA/GDPR compliance requirements.

Read full review

reviewer1284219

Program Director at a financial services firm with 201-500 employees

Mar 4, 2020

I would say that it is stable, as I am not aware of any major issues.

Read full review

Show 4 more reviews (out of 14)

Rapid7 AppSpider Cons review quotes

Head Information Security at Akhtar Fuiou Technologies

Nov 17, 2022

One of the challenges I have with AppSpider is that it gives you a lot of false positives, especially when compared to other solutions.

Read full review

Agustinus DWIJOKO

Network & Security Engineer at PT. Centrin Online Prima

Sep 27, 2020

AppSpider could improve in the area of integration. They need to add more integration opportunities.

Read full review

Agustinus DWIJOKO

Network & Security Engineer at PT. Centrin Online Prima

Apr 11, 2023

It needs better integration with mobile applications.

Read full review

Rapid7 AppSpider

Free Report: Rapid7 AppSpider Reviews and More

Learn what your peers think about Rapid7 AppSpider. Get advice and tips from experienced pros sharing their opinions. Updated: February 2025.

839,422 professionals have used our research since 2012.

Executive Manager at B2B-Solutions LLC

Nov 10, 2019

The solution is too slow. It could take a full day to scan. Competitors are much faster.

Read full review

Information Security Senior Expert (Founding member, African Cybersecurity Center) at a financial services firm with 10,001+ employees

Oct 22, 2019

This price of this solution is a little bit expensive.

Read full review

reviewer1327302

Security Consultant at a tech vendor with 11-50 employees

Apr 16, 2020

Support response times are slow and can be improved.

Read full review

Executive Manager at B2B-Solutions LLC

May 4, 2023

The performance of the solution could improve. When I compare the speed it is slower than others on the market. There are some tricks we use to help speed up the solution.

Read full review

HW

Hiroshi Watanabe

Marketing Expert at J's communication

Feb 19, 2025

The product should offer a GUI in Japanese and provide Japanese reports for end-users.

Read full review

GK

Cyber Security Consultant at Relevance Lab

Jun 5, 2019

Implementing Rapid7 AppSpider requires scanning and self-identification mechanisms. You can add different types of authentication to each scan.

Read full review

reviewer1284219

Program Director at a financial services firm with 201-500 employees

Mar 4, 2020

The dashboard and interface are crucial and they need some improvement.

Read full review

Show 4 more reviews (out of 14)

Product Categories

Product Categories

Static Application Security Testing (SAST)

Popular Comparisons

Popular Comparisons

SonarQube Server (formerly SonarQube) vs Rapid7 AppSpider

Checkmarx One vs Rapid7 AppSpider

Veracode vs Rapid7 AppSpider

OWASP Zap vs Rapid7 AppSpider

Acunetix vs Rapid7 AppSpider

PortSwigger Burp Suite Professional vs Rapid7 AppSpider

HCL AppScan vs Rapid7 AppSpider

Qualys Web Application Scanning vs Rapid7 AppSpider

Invicti vs Rapid7 AppSpider

See all alternatives

Product Categories

Product Categories

Static Application Security Testing (SAST)

Popular Comparisons

Popular Comparisons

SonarQube Server (formerly SonarQube) vs Rapid7 AppSpider

Checkmarx One vs Rapid7 AppSpider

Veracode vs Rapid7 AppSpider

OWASP Zap vs Rapid7 AppSpider

Acunetix vs Rapid7 AppSpider

PortSwigger Burp Suite Professional vs Rapid7 AppSpider

HCL AppScan vs Rapid7 AppSpider

Qualys Web Application Scanning vs Rapid7 AppSpider

Invicti vs Rapid7 AppSpider

See all alternatives

Related questions

15

What Application Security Solution Do You Use That Is DevOps Friendly?

88

Which is the most comprehensive open source Web Security Testing tool?

194

What is the best Application Security Testing platform?

7

When evaluating Application Security Testing, what aspect do you think is the most important to look for?

81

SAST vs. DAST: Which is better for application security testing?

85

What tools do you rely on for building a DevSecOps pipeline?

33

What does the Log4j/Log4Shell vulnerability mean for your company?

47

Checkmarx or Veracode. Which should we choose?

64

What are your recommended automated penetration testing tools?

51

What are the OWASP top 10 in 2020?